G
Guest
Usually when I compile OpenSSL, a folder named out32dll with 34 files is
generated. I have been successfuly doing this for every version of OpenSSL in
the last 3 years, until recently.
After I compiled 0.9.8a (I compiled this version last October. This time I
just want to recompile it for the new Apache HTTPD 2.2) , I found only 9
files in that folder. The other 25 files (see the list at the bottom of this
post) are hidden. I always check the "Show hidden files and folders" and
uncheck "Hide proected OS files" in the Folder Option. CheckedValue and
DefaultValue are 1 and 2 under the entry
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL".
Guessing a certain process is holding the folder, I restarted and failed to
delete it again. Ending the explorer.exe process didn't help, and
Sysinternals Process Explorer didn't find any suspicious process either.
Since there is a DOS from Windows 98 on the same computer, I booted into
DOS, and found the disappeared 25 files, which are just normal files without
RHS attributes. I deleted the folder in DOS, and came back to XP to compiled
it again. It's still the same. I found nothing wrong in FAT and ROOT sectors
with DiskEdit.
I thought something wrong with the FAT32 partition, but chkdsk's report was
OK. I created a new folder for OpenSSL on a NTFS partition and compiled it
again, the folder out32dll was still weird. So it has nothing to do with the
File System.
I heard Network Neighborhood might help, and shared the folder. Those hidden
files can been seen and copied on another computer. I copied and shared them
on the other computer, but the original computer cannot see them. I zipped
them and copied it back. The hidden files in zip can be seen with WinRAR and
Total Commander, but hidden again after unzip. I know they are in the
unzipped folder, becoz I can't delete the folder.
Closing Symantec AntiVirus didn't help, KillBox didn't work. Rootkit
Revealer found several registry entries hidden from Windows API, but they
seem not the reason.
However, things could be worse. Now if I pick any files on my XP, rename it
to one of the hidden file names, it will disappear immediately. Of course, I
can still find them by DOS and Network Neighborhood.
Any tip is appreciated.
bftest.exe
bntest.exe
casttest.exe
destest.exe
dhtest.exe
dsatest.exe
ecdhtest.exe
ecdsatest.exe
ectest.exe
enginetest.exe
evp_test.exe
exptest.exe
hmactest.exe
ideatest.exe
md2test.exe
md4test.exe
md5test.exe
randtest.exe
rc2test.exe
rc4test.exe
rmdtest.exe
rsa_test.exe
sha1test.exe
shatest.exe
ssltest.exe
generated. I have been successfuly doing this for every version of OpenSSL in
the last 3 years, until recently.
After I compiled 0.9.8a (I compiled this version last October. This time I
just want to recompile it for the new Apache HTTPD 2.2) , I found only 9
files in that folder. The other 25 files (see the list at the bottom of this
post) are hidden. I always check the "Show hidden files and folders" and
uncheck "Hide proected OS files" in the Folder Option. CheckedValue and
DefaultValue are 1 and 2 under the entry
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL".
Guessing a certain process is holding the folder, I restarted and failed to
delete it again. Ending the explorer.exe process didn't help, and
Sysinternals Process Explorer didn't find any suspicious process either.
Since there is a DOS from Windows 98 on the same computer, I booted into
DOS, and found the disappeared 25 files, which are just normal files without
RHS attributes. I deleted the folder in DOS, and came back to XP to compiled
it again. It's still the same. I found nothing wrong in FAT and ROOT sectors
with DiskEdit.
I thought something wrong with the FAT32 partition, but chkdsk's report was
OK. I created a new folder for OpenSSL on a NTFS partition and compiled it
again, the folder out32dll was still weird. So it has nothing to do with the
File System.
I heard Network Neighborhood might help, and shared the folder. Those hidden
files can been seen and copied on another computer. I copied and shared them
on the other computer, but the original computer cannot see them. I zipped
them and copied it back. The hidden files in zip can be seen with WinRAR and
Total Commander, but hidden again after unzip. I know they are in the
unzipped folder, becoz I can't delete the folder.
Closing Symantec AntiVirus didn't help, KillBox didn't work. Rootkit
Revealer found several registry entries hidden from Windows API, but they
seem not the reason.
However, things could be worse. Now if I pick any files on my XP, rename it
to one of the hidden file names, it will disappear immediately. Of course, I
can still find them by DOS and Network Neighborhood.
Any tip is appreciated.
bftest.exe
bntest.exe
casttest.exe
destest.exe
dhtest.exe
dsatest.exe
ecdhtest.exe
ecdsatest.exe
ectest.exe
enginetest.exe
evp_test.exe
exptest.exe
hmactest.exe
ideatest.exe
md2test.exe
md4test.exe
md5test.exe
randtest.exe
rc2test.exe
rc4test.exe
rmdtest.exe
rsa_test.exe
sha1test.exe
shatest.exe
ssltest.exe